|
|
Validated Protection Profiles
The following Protection Profiles (PP) have been evaluated and certified in accordance with the provisions of the
NIAP Common Criteria Evaluation and Validation Scheme and the Common Criteria Recognition Arrangement (CCRA). The PPs on this list have
been evaluated at accredited and licensed/approved evaluation facilities in the U.S. or in one of the other countries participating in the
CCRA for conformance to the Common Criteria for IT Security Evaluation (ISO Standard 15408).
Common Criteria certificates issued for PPs apply only to the specific versions and releases of those PPs and are valid only
in conjunction with complete certification/validation reports.
U.S. Government Protection Profiles
With many profiles being developed by numerous organizations within NIST and NSA, it became apparent that Protection Profile (PP)
efforts needed to be closely coordinated to facilitate representing a consistent strategic view to vendors and Government consumers.
In Feb 2002, NIST and NSA outlined a PP Development Plan (PPDP), to provide PP authors with a process for the development and
maintenance of U.S. Government PPs, and created the PP Review Board (PPRB) to identify and set forth frameworks of consistent security
requirements relative to the appropriate robustness of the PPs. The set of consistent security requirements identified by the
PPRB are recorded in a document referred to as a U.S. Government PP Consistency Instruction Manual (CIM). In October 2002, PP
CIMs for Basic and Medium Robustness were posted on the NIAP website. The adherence to the PPDP together with conformance
to the PP CIM of the appropriate robustness makes up the criteria for a U.S. Government PP. PPs written by US entities prior to October
2002 are recognized as U.S. Government Protection Profiles and may be referred to as such even though they do not have “US
Government” in their PP title. All PPs that are submitted for NIAP approval after October 2002, and which followed the
PPDP and meet the PPCIM criteria, will be labeled “U.S. Government Protection Profile.”
Sunset Date of PPs
- All PPs will be reviewed periodically to determine if the requirements are still acceptable in the face of rapidly changing technology, increasing threat levels, and other conditions.
- Sunset dates for PPs being replaced will be determined by the severity of changes and will be clearly posted next to the PP listing. All PPs with a sunset date will be marked with a sunset icon.
- When a sunset date is reached, the PP will no longer be available for new Security Target compliance claims.
- As soon as the sunset date is posted, vendors are encouraged to migrate to the requirements of the replacement PP.
- Assurance Maintenance may continue against a PP until it reaches its sunset date.
Archived Protection Profiles (PPs)
PPs are reviewed periodically to determine if the security functional and assurance requirements are still acceptable in the face of rapidly
changing technology and increasing threat levels. If it is determined that specific protection profiles no longer
accurately map to existing technology and threat levels, these PPs will be retired and archived. PPs listed in the archived
section of the NIAP CCEVS Validated Protection Profiles page are to be used for reference purposes only.
Click on a column header to change the sort order.
29 Validated Protection Profiles
Tech Type
|
Profile Name
|
Conformance Claim
|
CC Ver.
|
Abbreviation
|
Sponsor
|
Date(s)
|
| AntiVirus |
U.S. Government Protection Profile Anti-Virus Applications for Workstations in Basic Robustness Environments Version 1.2
|
Basic Robustness
|
3.1 |
pp_av_br_v1.2 |
DISA
|
2007-07-25
|
| Biometrics |
U.S. Government Biometric Verification Mode Protection Profile for Basic Robustness Environments, Version 1.1
|
Basic Robustness
|
3.1 |
pp_bvm_br_v1.1 |
NSA
|
2007-07-25
|
| Biometrics |
U.S. Government Biometric Verification Mode Protection Profile for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_bvm_mr_v1.1 |
NSA
|
2007-07-25
|
| DBMS |
U.S. Government Protection Profile Database Management Systems for Basic Robustness Environments, Version 1.2
|
Basic Robustness
|
3.1 |
pp_dbms_br_v1.2 |
NSA
|
2007-07-25
|
| Firewall |
U.S. Government Firewall Protection Profile for Medium Robustness Environments, V1.1
|
Medium Robustness
|
3.1 |
pp_fw_mr_v1.1 |
NSA
|
2007-07-25
|
| Firewall |
U.S. Government Traffic-Filter Firewall Protection Profile for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_fw_tf_mr_v1.1 |
NSA
|
2007-07-25
|
| Firewall |
U.S. Government Protection Profile for Application-level Firewall in Basic Robustness Environments Version 1.1
|
Basic Robustness
|
3.1 |
pp_fw_al_br_v1.1 |
NSA
|
2007-07-25
|
| Firewall |
U.S. Government Protection Profile for Traffic Filter Firewall in Basic Robustness Environments Version 1.1
|
Basic Robustness
|
3.1 |
pp_fw_tf_br_v1.1 |
NSA
|
2007-07-25
|
| IDS/IPS |
U.S. Government Protection Profile Intrusion Detection System - System for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_ids_sys_mr_v1.1 |
NSA
|
2007-06-18
|
| IDS/IPS |
U.S. Government Protection Profile Intrusion Detection System - Sensor for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_ids_sen_mr_v1.1 |
NSA
|
2007-06-18
|
| IDS/IPS |
U.S. Government Protection Profile Intrusion Detection System - Scanner for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_ids_sca_mr_v1.1 |
NSA
|
2007-06-18
|
| IDS/IPS |
U.S. Government Protection Profile Intrusion Detection System - Analyzer for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_ids_ana_mr_v1.1 |
NSA
|
2007-06-18
|
| IDS/IPS |
U.S. Government Protection Profile Intrusion Detection System Analyzer for Basic Robustness Environments, Version 1.3
|
Basic Robustness
|
3.1 |
pp_ids_ana_br_v1.3 |
NSA
|
2007-07-25
|
| IDS/IPS |
U.S. Government Protection Profile Intrusion Detection System - Scanner for Basic Robustness, Version 1.3
|
Basic Robustness
|
3.1 |
pp_ids_sca_br_v1.3 |
NSA
|
2007-07-25
|
| IDS/IPS |
U.S. Government Protection Profile Intrusion Detection System - Sensor for Basic Robustness Environments, Version 1.3
|
Basic Robustness
|
3.1 |
pp_ids_sen_br_v1.3 |
NSA
|
2007-07-25
|
| IDS/IPS |
U.S. Government Protection Profile Intrusion Detection System - System for Basic Robustness Environments, Version 1.7, dated July 25, 2007
|
Basic Robustness
|
3.1 |
pp_ids_sys_br_v1.7 |
NSA
|
2007-07-25
|
| Operating System |
Controlled Access Protection Profile, Version 1.d
|
EAL3
|
2.x |
pp_os_ca_v1.d |
NSA
|
1999-10-08
|
| Operating System |
U.S. Government Protection Profile for Separation Kernels in Environments Requiring High Robustness, Version 1.03
|
High Robustness
|
2.x |
pp_skpp_hr_v1.03 |
NSA
|
2007-06-29
|
| Operating System |
US Government Protection Profile for Single-Level Operating Systems in a Medium Robustness Environments, Version 1.91
|
Medium Robustness
|
2.x |
pp_os_sl_mr2.0_v1.91 |
NSA
|
2007-03-16
|
| Operating System |
US Government Protection Profile for Multi-Level Operating Systems in a Medium Robustness Environments, Version 1.91
|
Medium Robustness
|
2.x |
pp_os_ml_mr2.0_v1.91 |
NSA
|
2007-03-16
|
| PKI/KMI |
U.S. Government Family of Protection Profiles for Public Key Enabled Applications for Basic Robustness Environments, Version 2.8
|
EAL4 Augmented
|
3.1 |
pp_pke_v2.8 |
|
2007-05-01
|
| PKI/KMI |
U.S. Government Protection Profile Authorization Server for Basic Robustness Environments, Version 1.1
|
Basic Robustness
|
3.1 |
pp_authsrv_br_v1.1 |
NSA
|
2007-07-25
|
| PKI/KMI |
U.S. Government Directory Protection Profile for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_dir_mr_v1.1 |
NSA
|
2007-07-25
|
| Peripheral Switch |
Peripheral Sharing Switch for Human Interface Devices Protection Profile, Version 1.1
|
EAL4
|
3.1 |
pp_psshid_v1.1 |
NSA
|
2007-07-25
|
| Router |
U.S. Government Router PP for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_router_mr_v1.1 |
NSA
|
2007-07-25
|
| VPN |
U.S. Government Virtual Private Network Boundary Gateway for Medium Robustness Environments, Version 1.1
|
Medium Robustness
|
3.1 |
pp_vpn_mr_v1.1 |
NSA
|
2007-07-25
|
| Web Server |
U.S. Government Protection Profile Web Server for Basic Robustness Environments, Version 1.1
|
Basic Robustness
|
3.1 |
pp_websvr_br_v1.1 |
NSA
|
2007-07-25
|
| Wireless LAN |
US Government Wireless Local Area Network (WLAN) Access System for Basic Robustness Environments, Version 1.1
|
Basic Robustness
|
3.1 |
pp_wlan_as_br_v1.1 |
NSA
|
2007-07-25
|
| Wireless LAN |
US Government Protection Profile Wireless Local Area Network (WLAN) Client for Basic Robustness Environments, Version 1.1
|
Basic Robustness
|
3.1 |
pp_wlan_cli_br_v1.1 |
NSA
|
2007-07-25
|
Click on a column header to change the sort order.
46 Archived Validated Protection Profiles
|
Tech Type
|
Profile Name
|
Conformance Claim
|
CC Ver.
|
Abbreviation
|
Sponsor
|
Date(s)
|
| AntiVirus |
U.S. Government Protection Profile Anti-Virus Applications for Workstations in Basic Robustness Environments 1.0
|
Basic Robustness
|
2.x |
pp_av_br_v1.0 |
DISA
|
2005-01-06
2007-10-04
![[Sunset Date]](/assets/images/pp-icon-sunset.gif "[Sunset Date]")
|
| AntiVirus |
U.S. Government Protection Profile Anti-Virus Applications for Workstations in Basic Robustness Environments 1.1
|
Basic Robustness
|
2.x |
pp_av_br_v1.1 |
DISA
|
2006-04-04
2008-03-21
|
| Biometrics |
U.S. Government Biometric Verification Mode Protection Profile for Basic Robustness Environments, Version 1.0
|
Basic Robustness
|
2.x |
pp_bvm_br_v1.0 |
NSA
|
2006-01-12
2008-03-21
|
| Biometrics |
U.S. Government Biometric Verification Mode Protection Profile for Medium Robustness Environments, Version 1.0
|
Medium Robustness
|
2.x |
pp_bvm_mr_v1.0 |
NSA
|
2003-11-15
2008-03-21
|
| Certificate Management |
Certificate Issuing and Management Components Security Level 1 Protection Profile, Version 1.0
|
EAL1 Augmented
|
2.x |
pp_cimc_sl1_v1.0 |
NIST
|
2001-10-31
2008-03-21
|
| Certificate Management |
Certificate Issuing and Management Components Security Level 2 Protection Profile, Version 1.0
|
EAL2 Augmented
|
2.x |
pp_cimc_sl2_v1.0 |
NIST
|
2001-10-31
2008-03-21
|
| Certificate Management |
Certificate Issuing and Management Components Security Level 3 Protection Profile, Version 1.0
|
EAL3 Augmented
|
2.x |
pp_cimc_sl3_v1.0 |
NIST
|
2001-10-31
2008-03-21
|
| Certificate Management |
Certificate Issuing and Management Components Security Level 4 Protection Profile, Version 1.0
|
EAL4 Augmented
|
2.x |
pp_cimc_sl4_v1.0 |
NIST
|
2001-10-31
2008-03-21
|
| DBMS |
U.S. Government Protection Profile Database Management Systems for Basic Robustness Environments, Version 1.1
|
Basic Robustness
|
2.x |
pp_dbms_br_v1.1 |
NSA
|
2006-06-07
2008-03-21
|
| Firewall |
US Department of Defense Application-Level Firewall Protection Profile for Basic Robustness Environments, Version 1.0
|
EAL2
|
2.x |
pp_fw_al_br_v1.0 |
NSA
|
2000-06-22
2008-03-23
|
| Firewall |
US Department of Defense Application-Level Firewall Protection Profile for Medium Robustness Environments, Version 1.0
|
EAL2 Augmented
[Note]
|
2.x |
pp_fw_al_mr_v1.0 |
NSA
|
2000-06-28
2008-03-21
|
| Firewall |
US Government Traffic-Filter Firewall Protection Profile for Low-Risk Environments, Version 1.1
|
EAL2
|
2.x |
pp_fw_tf_lr_v1.1 |
|
1999-04-01
2008-03-21
|
| Firewall |
US Department of Defense Traffic-Filter Firewall Protection Profile for Medium Robustness Environments, Version 1.4
|
EAL2 Augmented
[Note]
|
2.x |
pp_fw_tf_mr_v1.4 |
NSA
|
2000-05-01
2008-03-21
|
| Firewall |
U.S. Government Traffic-Filter Firewall Protection Profile for Medium Robustness Environments, Version 1.1, January 9, 2006
|
Medium Robustness
|
2.x |
pp_fw_tf_mr2.0_v1.1 |
NSA
|
2006-01-09
2008-03-21
|
| Firewall |
U.S. Government Firewall Protection Profile for Medium Robustness Environments, V1.0, dated October 28, 2003
|
Medium Robustness
|
2.x |
pp_fw_mr2.0_v1.0 |
NSA
|
2006-01-09
2008-03-21
|
| Firewall |
U.S. Government Traffic-Filter Firewall Protection Profile for Medium Robustness Environments, Version 1.0
|
Medium Robustness
|
2.x |
pp_fw_tf_mr2.0_v1.0 |
NSA
|
2005-02-15
2006-01-09
|
| IDS/IPS |
Intrusion Detection System Analyzer Protection Profile, Version 1.1
|
EAL2
|
2.x |
pp_ids_ana_v1.1 |
NSA
|
2001-12-10
2008-03-21
|
| IDS/IPS |
Intrusion Detection System System Protection Profile, Version 1.4
|
EAL2
|
2.x |
pp_ids_sys_v1.4 |
NSA
|
2002-02-04
2008-03-21
|
| IDS/IPS |
Intrusion Detection System System Protection Profile, Version 1.5
|
EAL2
|
2.x |
pp_ids_sys_v1.5 |
NSA
|
2005-03-09
2008-03-21
|
| IDS/IPS |
Intrusion Detection System Sensor Protection Profile, Version 1.2
|
EAL2
|
2.x |
pp_ids_sen_v1.2 |
NSA
|
2005-04-27
2008-03-21
|
| IDS/IPS |
Intrusion Detection System Scanner Protection Profile, Version 1.2
|
EAL2
|
2.x |
pp_ids_sca_v1.2 |
NSA
|
2005-04-27
2008-03-21
|
| IDS/IPS |
Intrusion Detection System Analyzer Protection Profile, Version 1.2
|
EAL2
|
2.x |
pp_ids_ana_v1.2 |
NSA
|
2005-04-27
2008-03-21
|
| IDS/IPS |
Intrusion Detection System System Protection Profile, Version 1.6, dated April 4, 2006
|
EAL2
|
2.x |
pp_ids_sys_v1.6 |
NSA
|
2006-04-04
2008-03-21
|
| IDS/IPS |
Intrusion Detection System Sensor, Version 1.2
|
EAL2
|
2.x |
pp_ids_sen_v1.1 |
NSA
|
2001-12-10
2008-03-21
|
| IDS/IPS |
Intrusion Detection System Scanner Protection Profile, Version 1.1
|
EAL2
|
2.x |
pp_ids_sca_v1.1 |
NSA
|
2001-12-10
2008-03-21
|
| Miscellaneous |
Trusted Computing Platform Alliance Trusted Platform Module Protection Profile, Version 1.9.7
|
EAL3 Augmented
|
2.x |
pp_tcpatpm_v1.9.7 |
TCPA
|
2002-07-01
2008-03-21
|
| Miscellaneous |
Trusted Computing Platform Alliance Trusted Platform Module Protection Profile, Version 1.9.4
|
EAL3 Augmented
|
2.x |
pp_tcpatpm_v1.9.4 |
TCPA
|
2002-07-01
2008-03-21
|
| Miscellaneous |
Role Based Access Control Protection Profile Version 1.0
|
EAL2 Augmented
|
2.x |
pp_rbac_v1.0 |
NIST
|
1998-07-30
|
| Miscellaneous |
Trusted Computing Group Personal Computer Specific Trusted Building Block Protection Profile and TCG PC Specific TBB with Maintenance PP, Version 2.5
|
EAL3 Augmented
|
2.x |
pp_tcgpctbb_v2.5 |
TCG
|
2004-07-20
2008-03-21
|
| Operating System |
Labeled Security Protection Profile, Version 1.b
|
EAL3
|
2.x |
pp_os_ls_v1.b |
NSA
|
1999-10-08
2007-09-16
|
| Operating System |
Protection Profile for Multi-Level Operating Systems in Environments Requiring Medium Robustness, Version 1.22
|
EAL4 Augmented
|
2.x |
pp_os_ml_mr_v1.22 |
NSA
|
2001-05-23
2007-09-16
|
| Operating System |
Protection Profile for Single-level Operating Systems in Environments Requiring Medium Robustness, Version 1.22
|
EAL4 Augmented
|
2.x |
pp_os_sl_mr_v1.22 |
NSA
|
2001-05-23
2007-09-16
|
| PKI/KMI |
Department of Defense Public Key Infrastructures and Key Management Infrastructures Token Protection Profile (Medium Robustness), Version 3.0
|
EAL4 Augmented
[Note]
|
2.x |
pp_pkikmi_tkn_mr_v3.0 |
NSA
|
2002-03-22
2008-03-21
|
| PKI/KMI |
U.S. Government Family of Protection Profiles for Public Key Enabled Applications, Version 2.6.1
|
EAL3 Augmented
|
2.x |
pp_pke_2.6.1 |
USMC
|
2004-07-31
2008-03-21
|
| PKI/KMI |
U.S. Government Directory Protection Profile for Medium Robustness Environments, Version 1.0
|
Medium Robustness
|
2.x |
pp_dir_mr_v1.0 |
NSA
|
2004-09-17
2008-03-21
|
| PKI/KMI |
U.S. Government Family of Protection Profiles for Public Key Enabled Applications for Basic Robustness Environments, Version 2.5
|
EAL4 Augmented
|
2.x |
pp_pke_v2.5 |
USMC
|
2002-12-01
2008-03-21
|
| PKI/KMI |
U.S. Government Protection Profile Authorization Server for Basic Robustness Environments, Version 1.0
|
Basic Robustness
|
2.x |
pp_authsrv_br_v1.0 |
NSA
|
2005-06-29
2008-03-21
|
| PKI/KMI |
U.S. Government Family of Protection Profiles for Public Key Enabled Applications for Basic Robustness Environments, Version 2.75
|
Basic Robustness
|
2.x |
pp_pke_v2.75 |
USMC
|
2005-08-01
2008-03-21
|
| PKI/KMI |
U.S. Government Family of Protection Profiles for Public Key-Enabled Applications for Basic Robustness Environments, Version 2.77
|
Basic Robustness
|
2.x |
pp_pke_v2.77 |
USMC
|
2007-02-01
2008-03-21
|
| Peripheral Switch |
Peripheral Sharing Switch for Human Interface Devices Protection Profile, Version 1.0
|
EAL4
|
2.x |
pp_psshid_v1.0 |
NSA
|
2000-08-08
2008-03-21
|
| Router |
U.S. Government Router PP for Medium Robustness Environments, Version 1.0
|
Medium Robustness
|
2.x |
pp_router_mr_v1.0 |
NSA
|
2006-12-14
2008-03-21
|
| Smart Card |
Smart Card Security User Group Smart Card Protection Profile, Version 3.0
|
EAL4 Augmented
|
2.x |
pp_scsugsc_v3.0 |
SCSUG
|
2001-09-09
2008-03-21
|
| VPN |
U.S. Government Virtual Private Network Boundary Gateway for Medium Robustness Environments, Version 1.0
|
Medium Robustness
|
2.x |
pp_vpn_mr_v1.0 |
NSA
|
2006-02-23
2008-03-21
|
| Web Server |
U.S. Government Protection Profile Web Server for Basic Robustness Environments, Version 1.0
|
Basic Robustness
|
2.x |
pp_websvr_br_v1.0 |
NSA
|
2006-12-26
2008-03-21
|
| Wireless LAN |
US Government Wireless Local Area Network (WLAN) Access System for Basic Robustness Environments, Version 1.0
|
Basic Robustness
|
2.x |
pp_wlan_as_br_v1.0 |
NSA
|
2006-04-01
2008-03-21
|
| Wireless LAN |
US Government Protection Profile Wireless Local Area Network (WLAN) Client for Basic Robustness Environments, Version 1.0
|
Basic Robustness
|
2.x |
pp_wlan_cli_br_v1.0 |
NSA
|
2006-05-17
2008-03-21
|
Medium Robustness Update
Please note that several PPs were developed when “Medium Robustness” was defined as being of notably less assurance than it currently is. As such, although those PPs (and products compliant to them) were considered “Medium Robustness” at the time of evaluation, they do not meet what we currently define Medium Robustness to be. For additional information on Robustness, see the
Robustness FAQ
.
|
![[X]](/assets/images/button_close.gif){kind=small}